CVE-2024-4009
CRITICALDescription
Replay Attack in ABB, Busch-Jaeger, FTS Display (version 1.00) and BCU (version 1.3.0.33) allows attacker to capture/replay KNX telegram to local KNX Bus-System
Is your site exposed to CVE-2024-4009?
Run a free security scan — no signup, results in seconds.
CVSS v3.1 Score
Weakness Type (CWE)
Affected Products
| Vendor | Product |
|---|---|
| abb | 2tma310010b0001_firmware |
| abb | 2tma310010b0001 |
| abb | 2tma310011b0001_firmware |
| abb | 2tma310011b0001 |
| abb | 2tma310011b0002_firmware |
| abb | 2tma310011b0002 |
| abb | 2tma310010b0003_firmware |
| abb | 2tma310010b0003 |
| abb | 2tma310011b0003_firmware |
| abb | 2tma310011b0003 |
References
Frequently Asked Questions
What is CVE-2024-4009? +
How severe is CVE-2024-4009? +
What products are affected by CVE-2024-4009? +
How do I check if I'm vulnerable to CVE-2024-4009? +
Related Vulnerabilities
A weakness identified in OpenText Advanced Authentication where a Malicious browser plugin can record and replay the user authentication process …
"Remember me" cookie age is not verified on the server. This potentially allows an attacker to intercept a valid cookie …
Transmitted data is logged between the device and the backend service. An attacker could use these logs to perform a …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, the Key …
Use of fixed learning codes, one code to lock the car and the other code to unlock it, in the …
Misskey is an open source, federated social media platform. Prior to 2026.6.0, Misskey contains a vulnerability in Time-based One-Time Password …